Slackware: 2009-098-03 Critical: xine-lib Integer Overflow Issue
slackware
April 8, 2009
New xine-lib packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues
Summary
Here are the details from the Slackware 12.2 ChangeLog: patches/packages/xine-lib-1.1.16.3-i486-1_slack12.2.tgz: Upgraded to xine-lib-1.1.16.3. - Fix another possible int overflow in the 4XM demuxer. (ref. TKADV2009-004, CVE-2009-0385) For more information, see: https://www.cve.org/CVERecord?id=CVE-2009-0385 (* Security fix *)
Topics Covered
Where Find New Packages
Updated package for Slackware 12.0:
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/xine-lib-1.1.16.3-i486-1_slack12.0.tgz
Updated package for Slackware 12.1:
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/xine-lib-1.1.16.3-i486-1_slack12.1.tgz
Updated package for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/xine-lib-1.1.16.3-i486-1_slack12.2.tgz
Updated package for Slackware -current:
MD5 Signatures
Slackware 12.0 package:
797ff28685aeb138889692a787e459fd xine-lib-1.1.16.3-i486-1_slack12.0.tgz
Slackware 12.1 package:
09f8589fa3140e0f5b599bdef4f01137 xine-lib-1.1.16.3-i486-1_slack12.1.tgz
Slackware 12.2 package:
6ff68dd6af43ed7facb3255a8fda96d5 xine-lib-1.1.16.3-i486-1_slack12.2.tgz
Slackware -current package:
80128c40bbdd4a90197950412ed00f87 xine-lib-1.1.16.3-i486-1.tgz
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: Upgrade the package as root: # upgradepkg xine-lib-1.1.16.3-i486-1_slack12.2.tgz
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!